Detecting RootKits

ATTENTION: You are viewing a page formatted for mobile devices; to view the full web page, click HERE.

Main Area and Open Discussion > General Software Discussion

Detecting RootKits

<< < (3/6) > >>

Curt:
http://www.antirootkit.com/software/index.htm : wow! Thanks, laughinglizard ! :up:

Rootkit Detection & Removal Software

Detecting RootKits

Detecting RootKits

But more important:

Rootkit Prevention Software:

AntiHook AppDefend Cyberhawk DefenseWall HIPS Dynamic Security Agent Exe LockDown
GeSWall Personal Edition Neoava Guard ProcessGuard SocketShield ThreatMon
--- End quote ---

SocketShield is now $30 for 1 year LinkScanner Pro!; or 1 year FREE: http://www.trialpay.com/productpage/?c=dbab594&tid=6rGU5--

Plasma Man:
I love the maverick attitude in the RkUnhook help file. ;)

Curt:
Talking about PREVENTION of rootkits one should of course mention today's GAOTD:

For those who have been looking at returnil, it is todays giveaway, at http://www.giveawayoftheday.com/ for the next 23 and a bit hours
-Grorgy (July 09, 2007, 02:16 AM)
--- End quote ---
- even though it is strange that Returnil is free today when it was FREE only a week ago!

Hello everyone,
Thank you for your interest in Returnil. I am the official US rep for the company and look forward to help answering your questions about the software.

For those concerned over cost of licensing, please be aware that Returnil is now FREE for personal home use on a single computer.

Home page: http://www.returnilvirtualsystem.com/index.htm
Personal Edition (FREE): http://www.returnilvirtualsystem.com/index_files/rvspersonal.htm
___
With Kind Regards
Mike
-Coldmoon (June 28, 2007, 12:05 PM)
--- End quote ---

But prevent rootkits it will.

Nod5:
Curt,
Security tools like these always tend to be a bit hard to grasp I would say. I've only tried RootkitRevealer and it was a while ago. But as far as I remember, one quick way to sort out the results was to google on each match (and if needed restrict the search to sysinternals forum). I remember that that showed all my results to be false positives.

For example, your match containing "ControlSet001\Services\sptd\Cfg" is Daemon Tools:
http://www.google.com/search?q=ControlSet001%5CServices%5Csptd%5CCfg

Curt:
Thanks for sharing, Nod5 :up:

(.. hmm, that didn't come out all right; somehow it sounded familiar wrong
- anyone who have been at a AAA meeting will understand what I mean..)

speaking of it: in my setup it was Alcohol 52%...

- not Daemon Tools.

:D

Navigation

[0] Message Index

[#] Next page

[*] Previous page

Go to full version